Use after free in Browser UI in Google Chrome prior to 126.0.6478.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
References
Link | Resource |
---|---|
https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html | Third Party Advisory |
https://issues.chromium.org/issues/40062622 | Permissions Required |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/ | Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Chrome
Published: 2024-06-11T20:58:11.715Z
Updated: 2024-06-28T13:31:31.000Z
Reserved: 2024-06-11T06:12:53.660Z
Link: CVE-2024-5842
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-06-11T21:15:55.080
Modified: 2024-06-20T14:55:51.013
Link: CVE-2024-5842
JSON object: View
Redhat Information
No data.
CWE